Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-21365 |
7.8 (3.1)
|
Microsoft Office Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-01-14T18:04:09.116Z | 2026-02-26T19:09:16.548Z |
| CVE-2025-2746 |
9.8 (3.1)
|
Kentico Xperience <= 13.0.172 Staging Sync Server Dige… |
Kentico |
Xperience |
2025-03-24T18:16:04.022Z | 2026-02-26T19:09:16.392Z |
| CVE-2024-50567 |
6.8 (3.1)
|
An improper neutralization of special elements us… |
Fortinet |
FortiWeb |
2025-02-11T16:09:04.155Z | 2026-02-26T19:09:16.213Z |
| CVE-2025-21366 |
7.8 (3.1)
|
Microsoft Access Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-01-14T18:04:09.694Z | 2026-02-26T19:09:16.055Z |
| CVE-2025-2747 |
9.8 (3.1)
|
Kentico Xperience <= 13.0.178 Staging Sync Server None… |
Kentico |
Xperience |
2025-03-24T18:17:06.079Z | 2026-02-26T19:09:15.890Z |
| CVE-2024-27781 |
6.9 (3.1)
|
An improper neutralization of input during web pa… |
Fortinet |
FortiSandbox |
2025-02-11T16:09:12.324Z | 2026-02-26T19:09:15.677Z |
| CVE-2025-21395 |
7.8 (3.1)
|
Microsoft Access Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-01-14T18:04:12.837Z | 2026-02-26T19:09:15.513Z |
| CVE-2025-26512 |
9.9 (3.1)
|
CVE-2025-26512 Privilege Escalation Vulnerability in S… |
NetApp |
SnapCenter |
2025-03-24T22:06:00.720Z | 2026-02-26T19:09:15.329Z |
| CVE-2025-21157 |
7.8 (3.1)
|
InDesign Desktop | Out-of-bounds Write (CWE-787) |
Adobe |
InDesign Desktop |
2025-02-11T17:10:45.344Z | 2026-02-26T19:09:15.055Z |
| CVE-2025-21403 |
6.4 (3.1)
|
On-Premises Data Gateway Information Disclosure Vulner… |
Microsoft |
On-Premises Data Gateway |
2025-01-14T18:04:13.337Z | 2026-02-26T19:09:14.864Z |
| CVE-2025-1974 |
9.8 (3.1)
|
ingress-nginx admission controller RCE escalation |
kubernetes |
ingress-nginx |
2025-03-24T23:28:48.985Z | 2026-02-26T19:09:14.726Z |
| CVE-2025-21158 |
7.8 (3.1)
|
InDesign Desktop | Integer Underflow (Wrap or Wraparou… |
Adobe |
InDesign Desktop |
2025-02-11T17:10:47.804Z | 2026-02-26T19:09:14.593Z |
| CVE-2025-21335 |
7.8 (3.1)
|
Windows Hyper-V NT Kernel Integration VSP Elevation of… |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:17.808Z | 2026-02-26T19:09:14.341Z |
| CVE-2025-21156 |
7.8 (3.1)
|
InCopy | Integer Underflow (Wrap or Wraparound) (CWE-191) |
Adobe |
InCopy |
2025-02-11T17:21:25.696Z | 2026-02-26T19:09:14.174Z |
| CVE-2025-1097 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:05.879Z | 2026-02-26T19:09:14.028Z |
| CVE-2025-21187 |
7.8 (3.1)
|
Microsoft Power Automate Remote Code Execution Vulnerability |
Microsoft |
Power Automate for Desktop |
2025-01-14T18:04:20.259Z | 2026-02-26T19:09:13.876Z |
| CVE-2025-21159 |
7.8 (3.1)
|
Illustrator | Use After Free (CWE-416) |
Adobe |
Illustrator |
2025-02-11T17:27:39.557Z | 2026-02-26T19:09:13.710Z |
| CVE-2025-21186 |
7.8 (3.1)
|
Microsoft Access Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-01-14T18:04:20.776Z | 2026-02-26T19:09:13.442Z |
| CVE-2025-1098 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:15.610Z | 2026-02-26T19:09:13.280Z |
| CVE-2025-21163 |
7.8 (3.1)
|
Illustrator | Stack-based Buffer Overflow (CWE-121) |
Adobe |
Illustrator |
2025-02-11T17:27:40.356Z | 2026-02-26T19:09:13.139Z |
| CVE-2025-21224 |
8.1 (3.1)
|
Windows Line Printer Daemon (LPD) Service Remote Code … |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:22.623Z | 2026-02-26T19:09:12.951Z |
| CVE-2025-24514 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:36.802Z | 2026-02-26T19:09:12.808Z |
| CVE-2025-21160 |
7.8 (3.1)
|
Illustrator | Integer Underflow (Wrap or Wraparound) (… |
Adobe |
Illustrator |
2025-02-11T17:27:41.155Z | 2026-02-26T19:09:12.642Z |
| CVE-2025-21172 |
7.5 (3.1)
|
.NET and Visual Studio Remote Code Execution Vulnerability |
Microsoft |
.NET 8.0 |
2025-01-14T18:04:38.469Z | 2026-02-26T19:09:12.470Z |
| CVE-2024-58104 |
7.3 (3.1)
|
A vulnerability in the Trend Micro Apex One Secu… |
Trend Micro, Inc. |
Trend Micro Apex One |
2025-03-25T17:37:28.783Z | 2026-02-26T19:09:12.303Z |
| CVE-2025-24410 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:33.017Z | 2026-02-26T19:09:12.134Z |
| CVE-2025-21361 |
7.8 (3.1)
|
Microsoft Outlook Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office LTSC for Mac 2021 |
2025-01-14T18:04:43.571Z | 2026-02-26T19:09:11.962Z |
| CVE-2024-58105 |
7.3 (3.1)
|
A vulnerability in the Trend Micro Apex One Secu… |
Trend Micro, Inc. |
Trend Micro Apex One |
2025-03-25T17:37:39.464Z | 2026-02-26T19:09:11.806Z |
| CVE-2025-24412 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:36.216Z | 2026-02-26T19:09:11.638Z |
| CVE-2025-21372 |
7.8 (3.1)
|
Microsoft Brokering File System Elevation of Privilege… |
Microsoft |
Windows 11 Version 24H2 |
2025-01-14T18:04:44.826Z | 2026-02-26T19:09:11.485Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2019-25461 | Web Ofisi Platinum E-Ticaret v5 contains an SQL injection vulnerability that allows unauthenticated… | 2026-02-22T15:16:16.143 | 2026-02-26T20:12:16.450 |
| fkie_cve-2026-27208 | bleon-ethical/api-gateway-deploy provides API gateway deployment. Version 1.0.0 is vulnerable to an… | 2026-02-24T15:21:37.843 | 2026-02-26T20:11:29.340 |
| fkie_cve-2025-10010 | The CPSD CryptoPro Secure Disk application boots a small Linux operating system to perform user aut… | 2026-02-24T15:21:35.970 | 2026-02-26T20:10:39.847 |
| fkie_cve-2026-3101 | A vulnerability was found in Intelbras TIP 635G 1.12.3.5. This vulnerability affects unknown code o… | 2026-02-24T15:21:41.103 | 2026-02-26T20:09:34.143 |
| fkie_cve-2026-3102 | A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function Se… | 2026-02-24T15:21:41.317 | 2026-02-26T20:09:11.340 |
| fkie_cve-2026-2964 | A vulnerability was identified in higuma web-audio-recorder-js 0.1/0.1.1. Impacted is the function … | 2026-02-23T02:16:39.643 | 2026-02-26T20:08:43.307 |
| fkie_cve-2025-11563 | URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file ou… | 2026-02-25T08:16:18.337 | 2026-02-26T20:06:37.450 |
| fkie_cve-2025-70044 | An issue pertaining to CWE-295: Improper Certificate Validation was discovered in fofolee uTools-qu… | 2026-02-23T16:29:36.213 | 2026-02-26T20:06:13.963 |
| fkie_cve-2025-15059 | GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerab… | 2026-01-23T04:16:00.740 | 2026-02-26T20:04:21.843 |
| fkie_cve-2025-70045 | An issue pertaining to CWE-295: Improper Certificate Validation was discovered in jxcore jxm master… | 2026-02-23T16:29:36.323 | 2026-02-26T20:03:59.297 |
| fkie_cve-2025-11002 | 7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability … | 2026-01-23T04:16:00.553 | 2026-02-26T20:03:49.037 |
| fkie_cve-2025-70058 | An issue pertaining to CWE-295: Improper Certificate Validation was discovered in YMFE yapi v1.12.0… | 2026-02-23T16:29:36.433 | 2026-02-26T20:03:06.150 |
| fkie_cve-2026-22977 | In the Linux kernel, the following vulnerability has been resolved: net: sock: fix hardened userco… | 2026-01-21T14:16:06.853 | 2026-02-26T20:02:55.910 |
| fkie_cve-2026-22976 | In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix NULL d… | 2026-01-21T07:16:01.433 | 2026-02-26T20:02:36.820 |
| fkie_cve-2025-61146 | saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the component malloc_stub.c. | 2026-02-23T19:22:56.880 | 2026-02-26T20:01:26.777 |
| fkie_cve-2026-0399 | Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management … | 2026-02-24T15:21:36.980 | 2026-02-26T20:00:40.877 |
| fkie_cve-2026-22785 | orval generates type-safe JS clients (TypeScript) from any valid OpenAPI v3 or Swagger v2 specifica… | 2026-01-12T19:16:04.287 | 2026-02-26T20:00:15.910 |
| fkie_cve-2025-64124 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerab… | 2026-01-03T01:15:42.750 | 2026-02-26T19:59:52.763 |
| fkie_cve-2025-64123 | Unintended Proxy or Intermediary vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allo… | 2026-01-02T22:15:44.787 | 2026-02-26T19:59:40.363 |
| fkie_cve-2026-27567 | Payload is a free and open source headless content management system. Prior to 3.75.0, a Server-Sid… | 2026-02-24T15:21:38.273 | 2026-02-26T19:59:33.657 |
| fkie_cve-2025-64122 | Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller (MSC) … | 2026-01-02T22:15:44.660 | 2026-02-26T19:59:24.570 |
| fkie_cve-2025-64121 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Sta… | 2026-01-02T22:15:44.533 | 2026-02-26T19:58:29.730 |
| fkie_cve-2025-64120 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerab… | 2026-01-02T22:15:44.403 | 2026-02-26T19:58:19.450 |
| fkie_cve-2026-27568 | WWBN AVideo is an open source video platform. Prior to version 21.0, AVideo allows Markdown in vide… | 2026-02-24T15:21:38.843 | 2026-02-26T19:57:52.213 |
| fkie_cve-2025-15284 | Improper Input Validation vulnerability in qs (parse modules) allows HTTP DoS.This issue affects qs… | 2025-12-29T23:15:42.703 | 2026-02-26T19:57:11.663 |
| fkie_cve-2026-0805 | An input neutralization vulnerability in the Backup Configuration component of Crafty Controller al… | 2026-01-30T07:16:14.917 | 2026-02-26T19:57:06.950 |
| fkie_cve-2026-0963 | An input neutralization vulnerability in the File Operations API Endpoint component of Crafty Contr… | 2026-01-30T07:16:15.173 | 2026-02-26T19:54:36.460 |
| fkie_cve-2026-26045 | A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files… | 2026-02-21T06:16:58.867 | 2026-02-26T19:47:42.953 |
| fkie_cve-2026-26046 | A vulnerability was found in a Moodle TeX filter administrative setting where insufficient sanitiza… | 2026-02-21T06:17:00.203 | 2026-02-26T19:46:57.600 |
| fkie_cve-2026-27584 | Actual is a local-first personal finance tool. Prior to version 26.2.1, missing authentication midd… | 2026-02-24T15:21:39.010 | 2026-02-26T19:46:14.007 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-j47g-6v72-x3wr |
8.2 (3.1)
|
Fujitsu fbiosdrv.sys before 2.5.0.0 allows an attacker to potentially affect system confidentiality… | 2025-11-12T18:31:26Z | 2026-02-25T06:31:14Z |
| ghsa-v5rp-3mcx-fr73 |
3.3 (3.1)
4.8 (4.0)
|
A vulnerability has been found in libvips up to 8.18.0. The impacted element is the function vips_f… | 2026-02-25T03:30:58Z | 2026-02-25T03:30:59Z |
| ghsa-33r2-hfpx-fx7h |
5.3 (3.1)
4.8 (4.0)
|
A flaw has been found in libvips up to 8.18.0. The affected element is the function vips_foreign_lo… | 2026-02-25T03:30:58Z | 2026-02-25T03:30:59Z |
| ghsa-vfwc-g9gj-ppmx |
8.5 (4.0)
|
CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized p… | 2026-02-25T03:30:58Z | 2026-02-25T03:30:58Z |
| ghsa-crhx-frv8-2mww |
7.3 (3.1)
5.5 (4.0)
|
A weakness has been identified in itsourcecode News Portal Project 1.0. The impacted element is an … | 2026-02-25T03:30:58Z | 2026-02-25T03:30:58Z |
| ghsa-49pv-4fw7-7vw4 |
5.3 (3.1)
1.9 (4.0)
|
A security vulnerability has been detected in CodeAstro Food Ordering System 1.0. This affects an u… | 2026-02-25T03:30:58Z | 2026-02-25T03:30:58Z |
| ghsa-3pm4-mcqw-jq89 |
5.2 (3.1)
|
Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configu… | 2026-02-25T03:30:58Z | 2026-02-25T03:30:58Z |
| ghsa-xcg8-79j4-g746 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in themesflat Themesflat Elementor themesflat-eleme… | 2026-02-20T18:31:37Z | 2026-02-25T00:31:22Z |
| ghsa-whqr-g77p-vcjh |
7.3 (3.1)
5.5 (4.0)
|
A vulnerability has been found in itsourcecode Document Management System 1.0. This issue affects s… | 2026-02-25T00:31:22Z | 2026-02-25T00:31:22Z |
| ghsa-vp2m-r3pp-p859 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in ThemeREX Extreme Store extremestore allows Objec… | 2026-02-20T18:31:38Z | 2026-02-25T00:31:22Z |
| ghsa-pq9c-2qch-jgmw |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in ThemeREX Lorem Ipsum | Books & Media Store lorem… | 2026-02-20T18:31:38Z | 2026-02-25T00:31:22Z |
| ghsa-pm69-54qr-cgv7 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in A WP Life Slider Responsive Slideshow – Image sl… | 2026-02-20T18:31:38Z | 2026-02-25T00:31:22Z |
| ghsa-mjm8-6393-j3wg |
6.1 (3.1)
|
A cross-site scripting (XSS) vulnerability in a FileMaker WebDirect custom homepage could lead to u… | 2026-02-24T21:31:47Z | 2026-02-25T00:31:22Z |
| ghsa-9c6q-74h4-vx48 |
7.3 (3.1)
5.5 (4.0)
|
A security flaw has been discovered in itsourcecode News Portal Project 1.0. The affected element i… | 2026-02-25T00:31:22Z | 2026-02-25T00:31:22Z |
| ghsa-5ppr-f7g3-89cw |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in A WP Life Image Gallery – Lightbox Gallery, Resp… | 2026-02-20T18:31:38Z | 2026-02-25T00:31:22Z |
| ghsa-xrpj-w92h-g66g |
7.5 (3.1)
|
Missing Authorization vulnerability in GhostPool Aardvark Plugin aardvark-plugin allows Exploiting … | 2026-02-20T18:31:35Z | 2026-02-25T00:31:21Z |
| ghsa-x25m-mgjq-j9gg |
6.5 (3.1)
|
Missing Authorization vulnerability in Niaj Morshed LC Wizard ghl-wizard allows Exploiting Incorrec… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-wxg7-qr4v-6w49 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in AncoraThemes KindlyCare kindlycare allows Object… | 2026-02-20T18:31:36Z | 2026-02-25T00:31:21Z |
| ghsa-wgg5-6gv9-fvpp |
8.2 (3.1)
|
Missing Authorization vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-wfqx-2rhq-j78p |
6.5 (3.1)
|
Missing Authorization vulnerability in themewant Easy Hotel Booking easy-hotel allows Exploiting In… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-v6x7-wpp7-g26g |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in Kleor Contact Manager contact-manager allows Obj… | 2026-02-20T18:31:35Z | 2026-02-25T00:31:21Z |
| ghsa-v36c-x4c4-8wx6 |
6.3 (3.1)
|
Missing Authorization vulnerability in soporteblue Plugin BlueX for WooCommerce bluex-for-woocommer… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-pw6c-r98f-r37w |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in BoldThemes Travelicious travelicious allows Obje… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-p52x-wxj2-j8jr |
7.3 (3.1)
|
Missing Authorization vulnerability in LottieFiles LottieFiles lottiefiles allows Exploiting Incorr… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-p3w5-jrj2-m9r6 |
7.1 (3.1)
|
Missing Authorization vulnerability in wpWax Directorist directorist allows Exploiting Incorrectly … | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-p2vq-xhgq-wqqr |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in ThemeGoods Capella capella allows Object Injecti… | 2026-02-20T18:31:36Z | 2026-02-25T00:31:21Z |
| ghsa-mrcv-7mr4-vfm5 |
9.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in AncoraThemes SevenHills sevenhills allows Object… | 2026-02-20T18:31:36Z | 2026-02-25T00:31:21Z |
| ghsa-mj7j-8qcf-454p |
6.5 (3.1)
|
Missing Authorization vulnerability in Leadpages Leadpages leadpages allows Exploiting Incorrectly … | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-mgwj-pxgv-5r8r |
6.5 (3.1)
|
Missing Authorization vulnerability in Addonify Addonify – WooCommerce Wishlist addonify-wishlist a… | 2026-02-20T18:31:34Z | 2026-02-25T00:31:21Z |
| ghsa-jf9p-r93v-rw24 |
6.5 (3.1)
|
Missing Authorization vulnerability in add-ons.org PDF for WPForms pdf-for-wpforms allows Exploitin… | 2026-02-20T18:31:35Z | 2026-02-25T00:31:21Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2024-2 |
5.5 (3.1)
|
In Appwrite CLI before 3.0.0, when using the login command, the credentials of the Appwri… | appwrite | 2024-01-09T09:15:00+00:00 | 2024-01-17T11:19:17.695321+00:00 |
| pysec-2021-878 |
7.5 (3.1)
|
The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enab… | mkdocs | 2021-10-07T14:15:00Z | 2024-01-17T10:53:34.840029Z |
| pysec-2009-10 |
|
Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionali… | zodb3 | 2009-09-08T18:30:00Z | 2024-01-17T10:48:40.464440Z |
| pysec-2024-1 |
|
gratient is a user-facing library for generating color gradients of text. Version 0.5 con… | gratient | 2024-01-03T22:31:36+00:00 | |
| pysec-2023-235 |
7.5 (3.1)
|
An issue was discovered in Couchbase Server 7.2.0. There is a private key leak in debug.l… | couchbase | 2023-11-08T21:15:00Z | 2024-01-03T21:03:33.010228Z |
| pysec-2023-233 |
8.8 (3.1)
|
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif,… | exiv2 | 2023-11-06T18:15:00Z | 2024-01-02T15:20:59.435740Z |
| pysec-2021-877 |
7.5 (3.1)
|
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a… | exiv2 | 2021-07-26T17:15:00Z | 2024-01-02T15:20:59.375619Z |
| pysec-2018-120 |
6.5 (3.1)
|
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.318592Z |
| pysec-2018-119 |
6.5 (3.1)
|
There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cp… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.259575Z |
| pysec-2018-118 |
6.5 (3.1)
|
There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.201635Z |
| pysec-2018-117 |
6.5 (3.1)
|
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.c… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.143416Z |
| pysec-2017-112 |
6.5 (3.1)
|
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is in… | exiv2 | 2017-05-26T10:29:00Z | 2024-01-02T15:20:59.086141Z |
| pysec-2023-234 |
7.5 (3.1)
|
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via w… | esptool | 2023-11-09T16:15:00Z | 2024-01-02T13:04:16.284694Z |
| pysec-2017-111 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cros… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.638216Z |
| pysec-2017-110 |
7.5 (3.1)
|
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.587649Z |
| pysec-2017-109 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Refl… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.536257Z |
| pysec-2017-108 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM … | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.465498Z |
| pysec-2017-107 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stor… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.413874Z |
| pysec-2017-106 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be acc… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.361409Z |
| pysec-2017-105 |
7.5 (3.1)
|
Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allo… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.302348Z |
| pysec-2023-247 |
6.5 (3.1)
|
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Affected … | aiohttp | 2023-11-14T21:15:00+00:00 | 2023-11-22T23:23:57.631856+00:00 |
| pysec-2023-246 |
7.5 (3.1)
|
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP … | aiohttp | 2023-11-14T21:15:00+00:00 | 2023-11-22T23:23:57.547793+00:00 |
| pysec-2023-245 |
7.5 (3.1)
|
PyPinkSign v0.5.1 uses a non-random or static IV for Cipher Block Chaining (CBC) mode in … | pypinksign | 2023-11-16T18:15:00+00:00 | 2023-11-22T19:19:42.405614+00:00 |
| pysec-2023-244 |
|
Apache Software Foundation Apache Submarine has an SQL injection vulnerability when a use… | apache-submarine | 2023-11-22T10:15:00+00:00 | 2023-11-22T11:21:52.095543+00:00 |
| pysec-2023-242 |
7.4 (3.1)
|
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on comm… | httpie | 2023-11-16T18:15:00+00:00 | 2023-11-22T02:43:48.390438+00:00 |
| pysec-2023-240 |
|
Apache Software Foundation Apache Submarine has a bug when serializing against yaml. The … | apache-submarine | 2023-11-20T09:15:00+00:00 | 2023-11-20T11:21:41.073991+00:00 |
| pysec-2023-239 |
6.8 (3.1)
|
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the remote end of an… | asyncssh | 2023-11-14T03:15:00+00:00 | 2023-11-20T09:25:38.326328+00:00 |
| pysec-2023-238 |
|
Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 t… | pyarrow | 2023-11-20T08:59:06.851388+00:00 | |
| pysec-2023-237 |
5.9 (3.1)
|
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the extension info m… | asyncssh | 2023-11-14T03:15:00+00:00 | 2023-11-17T17:27:01.919743+00:00 |
| pysec-2023-236 |
7.5 (3.1)
|
Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulne… | remarshal | 2023-11-13T03:15:00+00:00 | 2023-11-16T20:25:23.801345+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33266 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.741026Z |
| gsd-2024-33478 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.740835Z |
| gsd-2024-33170 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.740641Z |
| gsd-2024-33503 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.740448Z |
| gsd-2024-33094 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.740240Z |
| gsd-2024-33173 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.740036Z |
| gsd-2024-33095 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739837Z |
| gsd-2024-33124 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739634Z |
| gsd-2024-33329 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739430Z |
| gsd-2024-33511 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739229Z |
| gsd-2024-33305 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.739023Z |
| gsd-2024-33357 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.738772Z |
| gsd-2024-33254 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.738567Z |
| gsd-2024-33091 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.738360Z |
| gsd-2024-33267 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.738163Z |
| gsd-2024-33416 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.737967Z |
| gsd-2024-33466 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.737764Z |
| gsd-2024-33510 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.737559Z |
| gsd-2024-33172 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.737358Z |
| gsd-2024-33435 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.737152Z |
| gsd-2024-33123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736950Z |
| gsd-2024-33162 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736744Z |
| gsd-2024-33475 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736524Z |
| gsd-2024-33392 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736262Z |
| gsd-2024-33375 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.736057Z |
| gsd-2024-33264 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.735849Z |
| gsd-2024-33213 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu… | 2024-04-24T05:02:09.735466Z |
| gsd-2024-33407 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.735210Z |
| gsd-2024-33309 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.735013Z |
| gsd-2024-33178 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.734806Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-486 | Malicious code in a5xm (npm) | 2026-01-23T06:32:37Z | 2026-01-23T18:48:54Z |
| mal-2026-485 | Malicious code in a4wu (npm) | 2026-01-23T06:32:36Z | 2026-01-23T18:48:54Z |
| mal-2026-497 | Malicious code in test-on-other (npm) | 2026-01-23T18:12:42Z | 2026-01-23T18:12:42Z |
| mal-2025-192877 | Malicious code in tdm-react (npm) | 2025-12-23T08:32:44Z | 2026-01-23T15:44:07Z |
| mal-2026-434 | Malicious code in weaviate-js (npm) | 2026-01-21T04:49:30Z | 2026-01-23T01:39:05Z |
| mal-2026-433 | Malicious code in wallet-adapter-react (npm) | 2026-01-21T04:37:07Z | 2026-01-23T01:39:05Z |
| mal-2026-404 | Malicious code in worldposition (npm) | 2026-01-21T04:21:35Z | 2026-01-23T01:39:05Z |
| mal-2026-403 | Malicious code in worldnormal (npm) | 2026-01-21T04:21:35Z | 2026-01-23T01:39:05Z |
| mal-2026-402 | Malicious code in vworldviewdir (npm) | 2026-01-21T04:21:35Z | 2026-01-23T01:39:05Z |
| mal-2026-373 | Malicious code in webmd-debug (npm) | 2026-01-20T06:13:03Z | 2026-01-23T01:39:05Z |
| mal-2026-372 | Malicious code in webmd-cookie (npm) | 2026-01-20T06:13:02Z | 2026-01-23T01:39:05Z |
| mal-2026-346 | Malicious code in zod-js (npm) | 2026-01-19T00:46:16Z | 2026-01-23T01:39:05Z |
| mal-2026-335 | Malicious code in wac-react-relay (npm) | 2026-01-19T00:45:11Z | 2026-01-23T01:39:05Z |
| mal-2026-466 | Malicious code in uuu8lgd (npm) | 2026-01-22T17:51:00Z | 2026-01-23T01:39:04Z |
| mal-2026-459 | Malicious code in un112 (npm) | 2026-01-22T09:55:45Z | 2026-01-23T01:39:04Z |
| mal-2026-439 | Malicious code in tv-admin-commons (npm) | 2026-01-21T07:40:29Z | 2026-01-23T01:39:04Z |
| mal-2026-438 | Malicious code in ts-tweetnacl-utils (npm) | 2026-01-21T07:37:23Z | 2026-01-23T01:39:04Z |
| mal-2026-432 | Malicious code in universal-provider (npm) | 2026-01-21T04:34:17Z | 2026-01-23T01:39:04Z |
| mal-2026-431 | Malicious code in testpkg-yilider690 (npm) | 2026-01-21T04:44:58Z | 2026-01-23T01:39:04Z |
| mal-2026-430 | Malicious code in storage-types (npm) | 2026-01-21T04:48:23Z | 2026-01-23T01:39:04Z |
| mal-2026-401 | Malicious code in victim-package-c (npm) | 2026-01-21T03:54:46Z | 2026-01-23T01:39:04Z |
| mal-2026-400 | Malicious code in victim-package-b (npm) | 2026-01-21T03:54:46Z | 2026-01-23T01:39:04Z |
| mal-2026-399 | Malicious code in torbaileys (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| mal-2026-398 | Malicious code in tor-libsignal (npm) | 2026-01-21T04:11:24Z | 2026-01-23T01:39:04Z |
| mal-2026-371 | Malicious code in theme-neutral (npm) | 2026-01-20T06:19:57Z | 2026-01-23T01:39:04Z |
| mal-2026-367 | Malicious code in uq-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:04Z |
| mal-2026-366 | Malicious code in testing-package-bose (npm) | 2026-01-20T04:05:57Z | 2026-01-23T01:39:04Z |
| mal-2026-365 | Malicious code in telia-eventapi-client (npm) | 2026-01-20T04:16:08Z | 2026-01-23T01:39:04Z |
| mal-2026-349 | Malicious code in tutor_table (npm) | 2026-01-19T06:07:51Z | 2026-01-23T01:39:04Z |
| mal-2026-334 | Malicious code in viem-js (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-golang-2025-58185 | Parsing DER payload can cause memory exhaustion in encoding/asn1 | 2025-11-06T12:58:12.795Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2025-58183 | Unbounded allocation when parsing GNU sparse map in archive/tar | 2025-11-06T12:58:07.546Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2025-47912 | Insufficient validation of bracketed IPv6 hostnames in net/url | 2025-11-06T12:58:02.636Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2025-47907 | Incorrect results returned from Rows.Scan in database/sql | 2025-08-10T23:42:00.295Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2025-47906 | Unexpected paths returned from LookPath in os/exec | 2025-09-20T08:43:22.590Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2025-4674 | Unexpected command execution in untrusted VCS repositories in cmd/go | 2025-07-31T05:44:23.042Z | 2025-11-06T13:25:46.476Z |
| bit-golang-2023-45288 | HTTP/2 CONTINUATION flood in net/http | 2024-04-06T18:19:39.789Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-6601 | Business Logic Errors in GitLab | 2025-10-28T12:05:34.442Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-25293 | ruby-saml vulnerable to Remote Denial of Service (DoS) with compressed SAML responses | 2025-04-14T11:55:21.293Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-25292 | Ruby SAML vulnerable to SAML authentication bypass due to namespace handling (parser differential) | 2025-04-14T11:55:19.936Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-25291 | ruby-saml vulnerable to SAML authentication bypass due to DOCTYPE handling (parser differential) | 2025-04-14T11:55:18.579Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-11989 | Missing Authorization in GitLab | 2025-10-28T12:03:56.032Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-11971 | Incorrect Authorization in GitLab | 2025-10-28T12:03:50.762Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2025-11702 | Missing Authorization in GitLab | 2025-11-06T13:22:05.051Z | 2025-11-06T13:25:46.476Z |
| bit-git-2025-48386 | Git allows a buffer overflow in 'wincred' credential helper | 2025-07-10T05:40:43.979Z | 2025-11-06T13:25:46.476Z |
| bit-git-2025-48385 | Git alllows arbitrary file writes via bundle-uri parameter injection | 2025-07-10T05:40:40.066Z | 2025-11-06T13:25:46.476Z |
| bit-git-2025-48384 | Git allows arbitrary code execution through broken config quoting | 2025-07-10T05:40:36.268Z | 2025-11-06T13:25:46.476Z |
| bit-git-2024-52006 | Newline confusion in credential helpers can lead to credential exfiltration in git | 2025-04-14T11:03:27.651Z | 2025-11-06T13:25:46.476Z |
| bit-git-2024-50349 | Git does not sanitize URLs when asking for credentials interactively | 2025-04-14T11:03:09.254Z | 2025-11-06T13:25:46.476Z |
| bit-git-2024-32002 | Git's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution | 2024-05-24T07:19:17.151Z | 2025-11-06T13:25:46.476Z |
| bit-ghost-2022-47197 | 2024-03-06T10:52:52.881Z | 2025-11-06T13:25:46.476Z | |
| bit-ghost-2022-47196 | 2024-03-06T10:53:02.275Z | 2025-11-06T13:25:46.476Z | |
| bit-ghost-2022-47195 | 2024-03-06T10:53:13.671Z | 2025-11-06T13:25:46.476Z | |
| bit-ghost-2022-47194 | 2024-03-06T10:53:22.782Z | 2025-11-06T13:25:46.476Z | |
| bit-envoy-2025-62504 | Envoy Lua filter use-after-free when oversized rewritten response body causes crash | 2025-10-21T08:41:18.087Z | 2025-11-06T13:25:46.476Z |
| bit-envoy-2024-30255 | HTTP/2: CPU exhaustion due to CONTINUATION frame flood | 2024-04-06T18:17:53.965Z | 2025-11-06T13:25:46.476Z |
| bit-envoy-2024-27919 | HTTP/2: memory exhaustion due to CONTINUATION frame flood | 2024-04-06T18:18:06.284Z | 2025-11-06T13:25:46.476Z |
| bit-elk-2025-25018 | Kibana Stored Cross-Site Scripting (XSS) | 2025-10-14T08:39:59.187Z | 2025-11-06T13:25:46.476Z |
| bit-elk-2025-25017 | Kibana Stored Cross-Site Scripting (XSS) | 2025-10-14T08:39:57.577Z | 2025-11-06T13:25:46.476Z |
| bit-elk-2025-25009 | Kibana Cross-Site Scripting (XSS) | 2025-10-09T08:39:52.493Z | 2025-11-06T13:25:46.476Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000002 | Thermal camera TMC series vulnerable to insufficient technical documentation | 2024-01-15T15:19+09:00 | 2024-03-11T18:17+09:00 |
| jvndb-2024-000016 | Group Office vulnerable to cross-site scripting | 2024-02-01T13:48+09:00 | 2024-03-11T18:04+09:00 |
| jvndb-2024-001785 | Incorrect permission assignment vulnerability in Trend Micro uiAirSupport | 2024-02-06T14:46+09:00 | 2024-03-11T17:42+09:00 |
| jvndb-2024-000015 | Payment EX vulnerable to information disclosure | 2024-02-01T13:41+09:00 | 2024-03-11T17:42+09:00 |
| jvndb-2024-001160 | File and Directory Permissions Vulnerability in Hitachi Storage Plug-in for VMware vCenter | 2024-01-31T15:25+09:00 | 2024-03-11T17:41+09:00 |
| jvndb-2024-001804 | Multiple buffer overflow vulnerabilities in HOME SPOT CUBE2 | 2024-02-06T15:02+09:00 | 2024-03-11T17:32+09:00 |
| jvndb-2024-002050 | Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers | 2024-02-07T15:39+09:00 | 2024-03-08T18:05+09:00 |
| jvndb-2024-000030 | a-blog cms vulnerable to directory traversal | 2024-03-08T15:27+09:00 | 2024-03-08T15:27+09:00 |
| jvndb-2024-002942 | OMRON NJ/NX series vulnerable to path traversal | 2024-03-08T14:16+09:00 | 2024-03-08T14:16+09:00 |
| jvndb-2024-000027 | FUJIFILM Business Innovation Corp. printers vulnerable to cross-site request forgery | 2024-03-06T18:24+09:00 | 2024-03-06T18:24+09:00 |
| jvndb-2024-000026 | Multiple vulnerabilities in printers and scanners which implement BROTHER Web Based Management | 2024-03-06T18:12+09:00 | 2024-03-06T18:12+09:00 |
| jvndb-2024-000029 | Toyoko Inn official App vulnerable to improper server certificate verification | 2024-03-06T13:53+09:00 | 2024-03-06T13:53+09:00 |
| jvndb-2024-000005 | "Mercari" App for Android fails to restrict custom URL schemes properly | 2024-01-24T13:46+09:00 | 2024-03-04T18:01+09:00 |
| jvndb-2024-000025 | Protection mechanism failure in RevoWorks | 2024-02-29T15:40+09:00 | 2024-02-29T15:40+09:00 |
| jvndb-2024-000024 | OET-213H-BTS1 missing authorization check in the initial configuration | 2024-02-29T14:59+09:00 | 2024-02-29T14:59+09:00 |
| jvndb-2024-000023 | OpenPNE plugin "opTimelinePlugin" vulnerable to cross-site scripting | 2024-02-29T13:12+09:00 | 2024-02-29T13:12+09:00 |
| jvndb-2024-000022 | Multiple vulnerabilities in baserCMS | 2024-02-27T14:25+09:00 | 2024-02-27T14:25+09:00 |
| jvndb-2024-002832 | EL Injection Vulnerability in Hitachi Global Link Manager | 2024-02-21T15:53+09:00 | 2024-02-21T15:53+09:00 |
| jvndb-2024-002560 | Android App "Mopria Print Service" vulnerable to improper intent handling | 2024-02-15T15:26+09:00 | 2024-02-15T15:26+09:00 |
| jvndb-2024-000019 | a-blog cms vulnerable to URL spoofing | 2024-02-15T14:12+09:00 | 2024-02-15T14:12+09:00 |
| jvndb-2022-002775 | Multiple vulnerabilities in Buffalo network devices | 2022-12-12T15:28+09:00 | 2024-02-14T15:45+09:00 |
| jvndb-2020-013805 | Zeroshell vulnerable to OS command injection | 2024-02-07T13:38+09:00 | 2024-02-07T13:38+09:00 |
| jvndb-2024-001462 | File and Directory Permissions Vulnerability in Hitachi Tuning Manager | 2024-02-05T14:54+09:00 | 2024-02-05T14:54+09:00 |
| jvndb-2024-001161 | Multiple vulnerabilities in SHARP Energy Management Controller with Cloud Services | 2024-01-31T16:01+09:00 | 2024-01-31T16:01+09:00 |
| jvndb-2024-000014 | Oracle WebLogic Server vulnerable to HTTP header injection | 2024-01-24T13:53+09:00 | 2024-01-24T13:53+09:00 |
| jvndb-2023-000121 | RakRak Document Plus vulnerable to path traversal | 2023-12-04T13:45+09:00 | 2024-01-24T12:06+09:00 |
| jvndb-2024-000003 | Pleasanter vulnerable to cross-site scripting | 2024-01-15T15:59+09:00 | 2024-01-15T15:59+09:00 |
| jvndb-2024-001001 | Multiple vulnerabilities in Panasonic Control FPWIN Pro7 | 2024-01-10T13:46+09:00 | 2024-01-10T13:46+09:00 |
| jvndb-2023-009966 | FXC wireless LAN routers "AE1021PE" and "AE1021" vulnerable to OS command injection Critical | 2023-12-07T15:09+09:00 | 2023-12-25T16:54+09:00 |
| jvndb-2023-009619 | OS command injection vulnerability in DT900 | 2023-12-06T14:43+09:00 | 2023-12-06T14:43+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-04853 | Huawei HarmonyOS释放后使用漏洞 | 2024-01-23 | 2026-01-15 |
| cnvd-2026-04852 | Huawei HarmonyOS越界访问漏洞 | 2024-01-23 | 2026-01-15 |
| cnvd-2026-04851 | Huawei HarmonyOS/EMUI逻辑漏洞 | 2024-02-19 | 2026-01-15 |
| cnvd-2026-04850 | Huawei HarmonyOS/EMUI越界读取漏洞 | 2024-02-19 | 2026-01-15 |
| cnvd-2026-04849 | Huawei HarmonyOS/EMUI堆栈缓冲区溢出漏洞 | 2024-02-19 | 2026-01-15 |
| cnvd-2026-04848 | Huawei HarmonyOS/EMUI堆栈缓冲区溢出漏洞(CNVD-2026-04848) | 2024-02-19 | 2026-01-15 |
| cnvd-2026-04847 | Huawei HarmonyOS/EMUI输入数据未被验证漏洞 | 2024-02-19 | 2026-01-15 |
| cnvd-2026-04139 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413973) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04138 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413874) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04137 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413775) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04136 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413676) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04135 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413577) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04134 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413478) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04130 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0413079) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04129 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412980) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04128 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412881) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04127 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412782) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04126 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412683) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04125 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412584) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04124 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412485) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04123 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412386) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04122 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412288) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04121 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412189) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04120 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0412090) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04119 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411991) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04118 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411892) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04117 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411793) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04116 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411699) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04115 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411501) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-04114 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0411402) | 2025-12-15 | 2026-01-15 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-10721 | Уязвимость функции composite_dev_cleanup() компонента usb ядра операционной системы Linux… | 05.09.2025 | 16.02.2026 |
| bdu:2025-10614 | Уязвимость функции nfs_get_lock_context операционной системы Linux, позволяющая нарушител… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10613 | Уязвимость функции rxe_create_cq операционной системы Linux, позволяющая нарушителю вызва… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10610 | Уязвимость функции mlx5e_fix_uplink_rep_features операционной системы Linux, позволяющая … | 01.09.2025 | 16.02.2026 |
| bdu:2025-10609 | Уязвимость функции tls_strp_flush_anchor_copy операционной системы Linux, позволяющая нар… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10608 | Уязвимость компонента cdns3 операционной системы Linux, позволяющая нарушителю вызвать от… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10606 | Уязвимость компонента ci_hdrc_imx операционной системы Linux, позволяющая нарушителю вызв… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10604 | Уязвимость функции size_limit_mb ядра операционной системы Linux, позволяющая нарушителю … | 01.09.2025 | 16.02.2026 |
| bdu:2025-10603 | Уязвимость функции virtsnd_probe() ядра операционной системы Linux, позволяющая нарушител… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10600 | Уязвимость компонента dell-wmi-sysman ядра операционной системы Linux, позволяющая наруши… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10599 | Уязвимость функции dwc3_check_event_buf операционной системы Linux, позволяющая нарушител… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10570 | Уязвимость функции mtk_drm_gem_dumb_create() модуля drivers/gpu/drm/mediatek/mtk_drm_gem.… | 01.09.2025 | 16.02.2026 |
| bdu:2025-10525 | Уязвимость отклонена | 29.08.2025 | 16.02.2026 |
| bdu:2025-10444 | Уязвимость функции populate_free_space_tree() в модуле fs/btrfs/free-space-tree.c файлово… | 29.08.2025 | 16.02.2026 |
| bdu:2025-10441 | Уязвимость механизма cgroup подсистемы BPF ядра операционных систем Linux, позволяющая на… | 29.08.2025 | 16.02.2026 |
| bdu:2025-10415 | Уязвимость функции xmlNodeSetName() интерпретатора языка программирования PHP, позволяюща… | 29.08.2025 | 16.02.2026 |
| bdu:2025-10414 | Уязвимость интерпретатора языка программирования PHP, связанная с ошибками разыменования … | 29.08.2025 | 16.02.2026 |
| bdu:2025-10413 | Уязвимость функции PQescapeIdentifier() интерпретатора языка программирования PHP, позвол… | 29.08.2025 | 16.02.2026 |
| bdu:2025-10311 | Уязвимость функции at91_gpio_probe() файла drivers/pinctrl/pinctrl-at91.c ядра операционн… | 27.08.2025 | 16.02.2026 |
| bdu:2025-10310 | Уязвимость компонента mtd ядра операционной системы Linux, позволяющая нарушителю вызвать… | 27.08.2025 | 16.02.2026 |
| bdu:2025-10309 | Уязвимость функции get_net() компонента net ядра операционной системы Linux, позволяющая … | 27.08.2025 | 16.02.2026 |
| bdu:2025-10307 | Уязвимость интерпретатора языка программирования Perl, связанная с использованием ненадёж… | 27.08.2025 | 16.02.2026 |
| bdu:2025-10265 | Уязвимость открытой библиотеки для расширения стандартной библиотеки C++ Abseil-cpp, связ… | 26.08.2025 | 16.02.2026 |
| bdu:2025-10257 | Уязвимость модуля fs/ext4/dir.c ядра операционной системы Linux, позволяющая нарушителю о… | 25.08.2025 | 16.02.2026 |
| bdu:2025-10132 | Уязвимость функции ath9k_htc_swba() компонента wifi ядра операционной системы Linux, позв… | 22.08.2025 | 16.02.2026 |
| bdu:2025-10131 | Уязвимость функции aspberrypi_clk_register() модуля drivers/clk/bcm/clk-raspberrypi.c ядр… | 22.08.2025 | 16.02.2026 |
| bdu:2025-10128 | Уязвимость функции rtw_fw_bt_wifi_control() модуля drivers/net/wireless/realtek/rtw88/coe… | 22.08.2025 | 16.02.2026 |
| bdu:2025-10126 | Уязвимость функции skb_linearize() модуля net/core/skmsg.c ядра операционных систем Linux… | 22.08.2025 | 16.02.2026 |
| bdu:2025-10125 | Уязвимость драйвера hisi_acc_vfio_pci ядра операционных систем Linux, позволяющая нарушит… | 22.08.2025 | 16.02.2026 |
| bdu:2025-09992 | Уязвимость модуля tarfile интерпретатора языка программирования Python (CPython), позволя… | 18.08.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0690 | Multiples vulnérabilités dans GitLab | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0689 | Multiples vulnérabilités dans les produits Microsoft | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0688 | Multiples vulnérabilités dans Microsoft Azure | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0687 | Multiples vulnérabilités dans Microsoft Windows | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0686 | Multiples vulnérabilités dans Microsoft Office | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0685 | Multiples vulnérabilités dans Microsoft Edge | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0684 | Multiples vulnérabilités dans les produits Intel | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0683 | Multiples vulnérabilités dans les produits Ivanti | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0682 | Multiples vulnérabilités dans Liferay | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0681 | Multiples vulnérabilités dans Google Chrome | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0680 | Multiples vulnérabilités dans les produits FoxIT | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0679 | Multiples vulnérabilités dans les produits Fortinet | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0678 | Multiples vulnérabilités dans les produits Adobe | 2025-08-13T00:00:00.000000 | 2025-08-13T00:00:00.000000 |
| certfr-2025-avi-0677 | Multiples vulnérabilités dans les produits Siemens | 2025-08-12T00:00:00.000000 | 2025-08-12T00:00:00.000000 |
| certfr-2025-avi-0676 | Multiples vulnérabilités dans les produits Schneider Electric | 2025-08-12T00:00:00.000000 | 2025-08-12T00:00:00.000000 |
| certfr-2025-avi-0675 | Vulnérabilité dans Liferay | 2025-08-12T00:00:00.000000 | 2025-08-12T00:00:00.000000 |
| certfr-2025-avi-0674 | Multiples vulnérabilités dans les produits SAP | 2025-08-12T00:00:00.000000 | 2025-08-12T00:00:00.000000 |
| certfr-2025-avi-0673 | Vulnérabilité dans Centreon Gorgone | 2025-08-12T00:00:00.000000 | 2025-08-12T00:00:00.000000 |
| certfr-2025-avi-0672 | Multiples vulnérabilités dans Liferay | 2025-08-11T00:00:00.000000 | 2025-08-11T00:00:00.000000 |
| certfr-2025-avi-0671 | Multiples vulnérabilités dans les produits IBM | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0670 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0669 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0668 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0667 | Multiples vulnérabilités dans Juniper Secure Analytics | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0666 | Multiples vulnérabilités dans Microsoft Azure | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0665 | Multiples vulnérabilités dans Microsoft Office | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0664 | Multiples vulnérabilités dans Microsoft Edge | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0663 | Multiples vulnérabilités dans GnuTLS | 2025-08-08T00:00:00.000000 | 2025-08-08T00:00:00.000000 |
| certfr-2025-avi-0662 | Multiples vulnérabilités dans les produits Centreon | 2025-08-07T00:00:00.000000 | 2025-08-07T00:00:00.000000 |
| certfr-2025-avi-0661 | Multiples vulnérabilités dans les produits Splunk | 2025-08-07T00:00:00.000000 | 2025-08-07T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2023-41 | Heap-use-after-free in sk_num | 2023-02-02T13:00:19.898084Z | 2024-05-08T03:26:30.000000Z |
| osv-2018-206 | Heap-buffer-overflow in parse_sigalgs_list | 2021-01-13T00:01:24.412685Z | 2024-05-08T03:26:30.000000Z |
| osv-2018-13 | Use-of-uninitialized-value in bn_sub_words | 2021-01-13T00:00:05.629092Z | 2024-05-08T03:26:30.000000Z |
| osv-2024-453 | Use-of-uninitialized-value in encode_base64_differential | 2024-05-08T00:15:55.868630Z | 2024-05-08T00:15:55.868890Z |
| osv-2024-450 | Use-of-uninitialized-value in ink_filepath_merge | 2024-05-08T00:13:15.436703Z | 2024-05-08T00:13:15.437003Z |
| osv-2024-449 | Use-of-uninitialized-value in YAML::Stream::Stream | 2024-05-08T00:10:19.320498Z | 2024-05-08T00:10:19.320806Z |
| osv-2024-434 | Use-of-uninitialized-value in validate_bluetooth_device_address | 2024-05-05T00:16:24.885047Z | 2024-05-05T00:16:24.885336Z |
| osv-2024-431 | Use-of-uninitialized-value in Lexer::ReadToken | 2024-05-05T00:14:47.078358Z | 2024-05-05T00:14:47.078742Z |
| osv-2024-423 | Use-of-uninitialized-value in Lexer::Error | 2024-05-05T00:12:07.769152Z | 2024-05-05T00:12:07.769622Z |
| osv-2024-422 | Use-of-uninitialized-value in cdc_task | 2024-05-05T00:07:53.114978Z | 2024-05-05T00:07:53.115405Z |
| osv-2024-420 | Use-of-uninitialized-value in Lexer::Error | 2024-05-05T00:06:56.111677Z | 2024-05-05T00:06:56.112011Z |
| osv-2024-409 | Use-of-uninitialized-value in Lexer::ReadToken | 2024-05-05T00:02:40.009382Z | 2024-05-05T00:02:40.009837Z |
| osv-2024-404 | Use-of-uninitialized-value in avifSequenceHeaderParse | 2024-05-04T00:03:34.449449Z | 2024-05-04T00:03:34.449922Z |
| osv-2024-403 | UNKNOWN READ in mem_planar_put_image_slow | 2024-05-04T00:02:34.636950Z | 2024-05-04T00:02:34.637538Z |
| osv-2024-294 | Segv on unknown address in gx_device_forward_finalize | 2024-04-24T00:03:38.661938Z | 2024-05-02T14:25:23.611452Z |
| osv-2024-389 | Heap-buffer-overflow in JS_CallInternal | 2024-04-30T00:14:11.245997Z | 2024-04-30T00:14:11.246314Z |
| osv-2024-359 | Security exception in graphql.schema.GraphQLTypeUtil.simplePrint | 2024-04-30T00:05:50.949087Z | 2024-04-30T00:05:50.949438Z |
| osv-2023-728 | Use-of-uninitialized-value in aesEncryptBlock | 2023-08-24T14:00:27.838220Z | 2024-04-29T14:13:55.378729Z |
| osv-2023-675 | Heap-use-after-free in parse_options | 2023-08-09T14:02:25.748940Z | 2024-04-29T14:13:24.917092Z |
| osv-2023-460 | Segv on unknown address in config__bridge_cleanup | 2023-06-06T14:00:25.983874Z | 2024-04-29T14:12:09.500082Z |
| osv-2024-80 | Stack-buffer-overflow in line_join_points | 2024-02-07T00:03:02.923052Z | 2024-04-29T11:39:24.480321Z |
| osv-2024-73 | Heap-buffer-overflow in pdf_finalize_string | 2024-02-04T00:02:39.648902Z | 2024-04-29T11:36:07.742568Z |
| osv-2024-264 | UNKNOWN READ in cli_html_normalise | 2024-04-17T00:06:11.717243Z | 2024-04-29T11:34:58.355901Z |
| osv-2024-98 | UNKNOWN READ in PackLinuxElf32::adjABS | 2024-02-11T00:14:29.715614Z | 2024-04-29T11:31:53.382431Z |
| osv-2024-74 | Heap-buffer-overflow in hts_log | 2024-02-04T00:02:45.988846Z | 2024-04-29T11:31:45.626304Z |
| osv-2024-39 | Heap-buffer-overflow in simdutf::westmere::implementation::convert_utf8_to_utf32 | 2024-01-25T00:05:37.689031Z | 2024-04-29T11:31:05.900312Z |
| osv-2024-181 | Security exception in org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext | 2024-03-18T00:11:51.491190Z | 2024-04-29T11:30:26.169921Z |
| osv-2024-267 | Heap-buffer-overflow in SetDataFormat | 2024-04-18T00:02:12.015129Z | 2024-04-29T11:29:45.142411Z |
| osv-2024-233 | Use-of-uninitialized-value in WelsDec::CWelsDecoder::ReorderPicturesInDisplay | 2024-04-03T00:12:42.632653Z | 2024-04-29T11:29:24.123337Z |
| osv-2024-20 | Heap-buffer-overflow in bam_aux_get | 2024-01-19T00:05:05.917557Z | 2024-04-29T11:28:16.496002Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2020-0039 | `index()` allows out-of-bound read and `remove()` has off-by-one error | 2020-09-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0038 | Memory safety issues in `compact::Vec` | 2020-09-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0037 | Misbehaving `HandleLike` implementation can lead to memory safety violation | 2020-08-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0035 | Chunk API does not respect align requirement | 2020-08-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0034 | Multiple security issues including data race, buffer overflow, and uninitialized memory drop | 2020-08-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0033 | Matrix::new() drops uninitialized memory | 2020-08-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0032 | StrcCtx deallocates a memory region that it doesn't own | 2020-08-20T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0031 | HTTP Request smuggling through malformed Transfer Encoding headers | 2020-06-16T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0030 | Missing sanitization in mozwire allows local file overwrite of files ending in .conf | 2020-08-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0029 | Allows viewing and modifying arbitrary structs as bytes | 2020-06-14T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0028 | `LocalRequest::clone` creates multiple mutable references to the same object | 2020-05-27T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0027 | traitobject assumes the layout of fat pointers | 2020-06-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0026 | linked-hash-map creates uninitialized NonNull pointer | 2020-06-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0025 | bigint is unmaintained, use uint instead | 2020-05-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0023 | Lifetime boundary for `raw_slice` and `raw_slice_mut` are incorrect | 2020-02-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0022 | Ozone contains several memory safety issues | 2020-07-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0021 | rio allows a use-after-free buffer access when a future is leaked | 2020-05-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0019 | tokio-rustls reads may cause excessive memory usage | 2020-05-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0017 | Use after free in ArcIntern::drop | 2020-05-28T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0015 | Crash causing Denial of Service attack | 2020-04-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0014 | Various memory safety issues | 2020-04-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0013 | fake-static allows converting any reference into a `'static` reference | 2020-04-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0012 | Relies on undefined behavior of `char::from_u32_unchecked` | 2020-04-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0011 | Library exclusively intended to obfuscate code. | 2020-04-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0009 | `read_scalar` and `read_scalar_at` allow transmuting values without `unsafe` blocks | 2020-04-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0008 | Flaw in hyper allows request smuggling by sending a body in GET requests | 2020-03-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0007 | use-after or double free of allocated memory | 2020-03-27T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0006 | Flaw in `realloc` allows reading unknown memory | 2020-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0005 | CBox API allows to de-reference raw pointers without `unsafe` code | 2020-03-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0004 | sigstack allocation bug can cause memory corruption or leak | 2020-01-24T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:7241 | Moderate: rust-bootupd security update | 2025-05-13T00:00:00Z | 2025-07-02T13:14:49Z |
| alsa-2025:7242 | Moderate: gstreamer1-plugins-good security update | 2025-05-13T00:00:00Z | 2025-07-02T13:13:21Z |
| alsa-2025:7243 | Moderate: gstreamer1-plugins-base security update | 2025-05-13T00:00:00Z | 2025-07-02T13:11:45Z |
| alsa-2025:7256 | Moderate: git-lfs security update | 2025-05-13T00:00:00Z | 2025-07-02T13:09:54Z |
| alsa-2025:7309 | Moderate: openjpeg2 security update | 2025-05-13T00:00:00Z | 2025-07-02T13:08:12Z |
| alsa-2025:7313 | Moderate: keylime-agent-rust security update | 2025-05-13T00:00:00Z | 2025-07-02T13:06:35Z |
| alsa-2025:7317 | Moderate: python3.12-cryptography security update | 2025-05-13T00:00:00Z | 2025-07-02T13:05:05Z |
| alsa-2025:7350 | Moderate: perl-Module-ScanDeps security update | 2025-05-13T00:00:00Z | 2025-07-02T13:04:11Z |
| alsa-2025:7418 | Important: php:8.3 security update | 2025-05-13T00:00:00Z | 2025-07-02T13:02:35Z |
| alsa-2025:7426 | Moderate: nodejs:20 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:59:44Z |
| alsa-2025:7432 | Moderate: php:8.2 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:57:30Z |
| alsa-2025:7457 | Moderate: exiv2 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:55:16Z |
| alsa-2025:7459 | Moderate: buildah security update | 2025-05-13T00:00:00Z | 2025-07-02T12:54:03Z |
| alsa-2025:7462 | Important: podman security update | 2025-05-13T00:00:00Z | 2025-07-02T12:53:05Z |
| alsa-2025:7466 | Moderate: delve and golang security update | 2025-05-13T00:00:00Z | 2025-07-02T12:51:53Z |
| alsa-2025:7467 | Moderate: skopeo security update | 2025-05-13T00:00:00Z | 2025-07-02T12:50:06Z |
| alsa-2025:7475 | Important: grafana security update | 2025-05-13T00:00:00Z | 2025-07-02T12:49:05Z |
| alsa-2025:7476 | Important: python-jinja2 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:48:05Z |
| alsa-2025:7478 | Moderate: corosync security update | 2025-05-13T00:00:00Z | 2025-07-02T12:46:51Z |
| alsa-2025:7482 | Moderate: git security update | 2025-05-13T00:00:00Z | 2025-07-02T12:44:07Z |
| alsa-2025:7484 | Important: gvisor-tap-vsock security update | 2025-05-13T00:00:00Z | 2025-07-02T12:40:29Z |
| alsa-2025:7489 | Important: php security update | 2025-05-13T00:00:00Z | 2025-07-02T12:39:26Z |
| alsa-2025:7490 | Important: mod_auth_openidc security update | 2025-05-13T00:00:00Z | 2025-07-02T12:37:21Z |
| alsa-2025:7494 | Moderate: tomcat9 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:36:19Z |
| alsa-2025:7496 | Important: libxslt security update | 2025-05-13T00:00:00Z | 2025-07-02T12:34:10Z |
| alsa-2025:7497 | Moderate: tomcat security update | 2025-05-13T00:00:00Z | 2025-07-02T12:33:08Z |
| alsa-2025:7502 | Moderate: nodejs22 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:30:23Z |
| alsa-2025:7505 | Important: libsoup3 security update | 2025-05-13T00:00:00Z | 2025-07-02T12:28:37Z |
| alsa-2025:7506 | Important: firefox security update | 2025-05-13T00:00:00Z | 2025-07-02T12:27:26Z |
| alsa-2025:7507 | Important: thunderbird security update | 2025-05-13T00:00:00Z | 2025-07-02T12:26:26Z |